General

  • Target

    02976d687c58f0c92bbf8f1ed005de2c9da400c6082e3d5b605cb19a0bca06a8

  • Size

    448KB

  • Sample

    250702-x2ds4szxgz

  • MD5

    e0f85198c031418775ffd1eefb6e8c0c

  • SHA1

    88606bf7c57b6a353d98e96cdcd2a9ff65bccc9b

  • SHA256

    02976d687c58f0c92bbf8f1ed005de2c9da400c6082e3d5b605cb19a0bca06a8

  • SHA512

    aac666c00c2f30bcfe8556f546e73bd8a9dbeb93b7e56493f92bb8fe2094f28d16df2ee83055d4992bc3ccdf043b23e5b051d0e6e81e4ff308089e6f0ef63c49

  • SSDEEP

    6144:ccTgav1cdCTuoPbgwmOLJvKRILSFvdFDcEOkCybEaQRXr9HNdvOaxy8Kc5R+:cSvO2x9mONvKRILSFnOkx2LIaxya5E

Score
7/10

Malware Config

Targets

    • Target

      02976d687c58f0c92bbf8f1ed005de2c9da400c6082e3d5b605cb19a0bca06a8

    • Size

      448KB

    • MD5

      e0f85198c031418775ffd1eefb6e8c0c

    • SHA1

      88606bf7c57b6a353d98e96cdcd2a9ff65bccc9b

    • SHA256

      02976d687c58f0c92bbf8f1ed005de2c9da400c6082e3d5b605cb19a0bca06a8

    • SHA512

      aac666c00c2f30bcfe8556f546e73bd8a9dbeb93b7e56493f92bb8fe2094f28d16df2ee83055d4992bc3ccdf043b23e5b051d0e6e81e4ff308089e6f0ef63c49

    • SSDEEP

      6144:ccTgav1cdCTuoPbgwmOLJvKRILSFvdFDcEOkCybEaQRXr9HNdvOaxy8Kc5R+:cSvO2x9mONvKRILSFnOkx2LIaxya5E

    Score
    7/10
    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks